SCADA Vulnerabilities & Exposures (SVE)

[SVE-326834588] Ctek, Inc. SkyRouter

Date

Type

Platform

Author

EDB-ID

CVE-ID

OSVDB-ID

Download

App

SIS Signature

2017-09-21

Other

Ctek, Inc.

Maxim Rupp reported the vulnerability to ICS-CERT.

N/A

CVE-2017-1400

N/A

N/A

N/A

Source

#
# Ctek, Inc. SkyRouter
#
### VULNERABLE VENDOR
Ctek, Inc.
### VULNERABLE PRODUCT
SkyRouter
### RESEARCHER
Maxim Rupp reported the vulnerability to ICS-CERT.
### AFFECTED PRODUCTS
The following versions of SkyRouter, a wireless and automation solution, are affected:
SkyRouter Series 4200 and 4400 all versions prior to V6.00.11
### IMPACT
Successful exploitation of this vulnerability may allow an unauthorized user to view and edit settings without authenticating.
### VULNERABILITY OVERVIEW
IMPROPER AUTHENTICATION CWE-287
By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the application without authenticating.
CVE-2017-14000 has been assigned to this vulnerability.
A CVSS v3 base score of 8.6 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L)
### BACKGROUND
Critical Infrastructure Sectors: Commercial Facilities, Communications, Food and Agriculture, Transportation Systems, and Water and Wastewater Systems
Countries/Areas Deployed: Worldwide
Company Headquarters Location: San Pedro, California
### MITIGATION
Ctek, Inc., reports they have addressed this issue and addressed additional security requirements in their latest security release V6.00.11, which is now available on all models currently in production. These models are identified as Z4500, Z4550, and Z4400. The update can be obtained via the wireless device's Tool and Utilities Section, which provides an Over-The-Air Firmware update mechanism. Ctek, Inc., reports that due to industry demand, wireless carriers are rapidly eliminating 2G and 3G CDMA service and they will not be creating any additional update releases for those products.
Ctek, Inc., reports they are now selling a 4G version of the SkyRouter which they confirm the latest firmware release in this product does address the issues that were reported in the 3G device. They no longer sell the 2G/3G version of the SkyRouter on which the vulnerability was originally reported.

About CRITIFENCE®

CRITIFENCE® provides unique Cyber Security solutions designed for Critical Infrastructure, SCADA and Industrial Control Systems which allow to monitor and control OT network easily and totally passively.

Our Vision

Our vision is a secure and survivable cyber defense methodology of physical processes in Critical Infrastructures, SCADA and Industrial Control Systems.